User Enrolment and MDM

Account-driven User Enrolment is designed for BYOD — or bring-your-own-device deployments — where the user, not the organisation, owns the device. It works with accounts created in Apple School Manager or Apple Business Manager, or with federated accounts linked to a third-party mobile device management (MDM) solution and an identity provider (IdP), like Google Workspace or Microsoft Entra ID.

After users successfully sign in on their device, they can see details about what’s being managed on that device and how much iCloud storage space is provided by their organisation. As the user owns the device, account-driven User Enrolment can apply only a limited set of payloads and restrictions to it. For more information, see User Enrolment MDM information.

With account-driven User Enrolment, IT administrators can manage only an organisation’s accounts, settings and information provisioned with MDM, never a user’s personal account. For more information, see How enrolment methods help to protect the user’s privacy.

Organisation can also choose to use account-driven Device Enrolment. This method allows the organisation a few more controls and configurations. For more information, see Device Enrolment and MDM.

Helpful?

Shop

Quick Links

Shop Special Stores

Explore Mac

Shop Mac

More from Mac

Explore iPad

Shop iPad

More from iPad

Explore iPhone

Shop iPhone

More from iPhone

Explore Watch

Shop Watch

More from Watch

Explore AirPods

Shop AirPods

More from AirPods

Explore TV & Home

Shop TV & Home

More from TV & Home

Explore Entertainment

Support

Shop Accessories

Explore Accessories

Explore Support

Get Help

Helpful Topics

Quick Links

User Enrolment and MDM